Specifications
Cisco Aggregation Services Router (ASR) 901 Series Security Target
Page 44 of 50
TOE SFRs
How the SFR is Met
purposes of this evaluation, the privileged level is equivalent to full administrative
access to the CLI, which is the default access for IOS privilege level 15; and the
semi-privileged level equates to any privilege level that has a subset of the
privileges assigned to level 15. Privilege levels 0 and 1 are defined by default and
are customizable, while levels 2-14 are undefined by default and are also
customizable.
The term “Authorized Administrator” is used in this ST to refer to any user which
has been assigned to a privilege level that is permitted to perform the relevant
action; therefore has the appropriate privileges to perform the requested functions.
Therefore, semi-privileged administrators with only a subset of privileges can also
modify TOE data based on if granted the privilege.
FMT_SMF.1
The TOE provides all the capabilities necessary to securely manage the TOE. The
Security Administrators (a.k.a Authorized Administrators) user can connect to the
TOE using the CLI to perform these functions via SSHv2, a terminal server, or at
the local console.
The specific management capabilities available from the TOE include:
Local and remote administration of the TOE and the services provided by
the TOE via the TOE CLI, as described above;
The ability to update the IOS software (image integrity verification is
provided using SHA-256 digital signature)
Ability to configure the cryptographic functionality;
Ability to configure the IPsec functionality,
Ability to enable, disable, determine and modify the behavior of all the
security functions of the TOE via the CLI.
FMT_SMR.2
The TOE maintains Authorizer Administrators that include privileged and semi-
privileged administrator roles to administer the TOE locally and remotely.
The TOE performs role-based authorization, using TOE platform authorization
mechanisms, to grant access to the privileged and semi-privileged roles. For the
purposes of this evaluation, the privileged role is equivalent to full administrative
access to the CLI, which is the default access for IOS privilege level 15; and the
semi-privileged role equates to any privilege level that has a subset of the privileges
assigned to level 15. Privilege levels 0 and 1 are defined by default and are
customizable, while levels 2-14 are undefined by default and are also customizable.
Note: the levels are not theoretically hierarchical.
The term “Authorized Administrator” is used in this ST to refer to any user which
has been assigned to a privilege level that is permitted to perform the relevant
action; therefore has the appropriate privileges to perform the requested functions.
The privilege level determines the functions the user can perform; hence the
Authorized Administrator with the appropriate privileges.
The TOE can and shall be configured to authenticate all access to the command line
interface using a username and password.
The TOE supports both local administration via a directly connected console cable
and remote authentication via SSH.
FPT_SKP_EXT.1 and
The TOE includes CLI command features that can be used to configure the TOE to